What happened
In mid-2024 the furniture and homewares retailer Early Settler confirmed a data breach exposing customer contact information โ names, emails, phone numbers and delivery addresses, and some dates of birth [es-cd], [es-ib]. The company said no payment-card data was stored or exposed, and notified regulators in both Australia and New Zealand.
Current status
Disclosed. An attacker claimed roughly 1.1 million records; the company did not confirm a figure, so no count is asserted here.
Why it matters
Even a contact-details breach at a retailer feeds targeted phishing, and this one crossed the Tasman โ Australian and New Zealand customers alike.